Hacker groups Silent Crow and “CYberguerrillas BY” carried out a cyber attack on the servers of the Russian airline Aeroflot, as a result of which they gained access to the flight databases, including the personal data of all passengers, and also completely destroyed these resources.
“We announce the successful completion of a long and large-scale operation, as a result of which the internal IT infrastructure of Aeroflot was completely compromised and destroyed. The personal data of all Russians who have ever flown with Aeroflot have now also set off on a journey – however, without luggage and in one direction,” – said representatives of Silent Crow.
According to them, in the course of the attack, they managed to download a complete archive of flight history databases, compromise all critical company systems, gain access to the personal computers of employees, including senior management, and obtain information from listening servers, audio recordings of conversations, intercepted communications and materials from surveillance and control systems.
“The amount of information obtained: 12TB of databases, 8TB of files from Windows Share, 2TB of corporate mail. All these resources are now inaccessible or destroyed, and recovery may require tens of millions of dollars. The damage is strategic. Our operation is a direct message to all workers of the oppressive apparatus: your digital security is worthless and you yourself have long been under surveillance. We will begin publishing some of the data obtained soon. We are not just destroyed the infrastructure – we left a mark” – says the message.
On the morning of July 28, Aeroflot’s press service announced a failure in the company’s information systems, due to which “a forced adjustment in the flight schedule is expected, in particular through rescheduling and cancellation.” Later, it was reported about the cancellation of about 50 domestic flights from Moscow to various Russian cities.
